Chapters
00:00 UniFi Network 9.0 - Built to Scale
01:36 UniFi CyberSecure Subscription
03:21 Site Magic Update
04:02 Self Hosted Version 9
04:20 Zone Based Firewall Rules
05:40 UniFi API
I’m pretty sure once my 2yr subscription to pfsense+ is up I will be switching to UniFi firewall. They have come a long way and there isn’t much that UniFi can’t do that pfsense can do now days. The firewall rules was a big pain point for me and now that it’s fixed I’ll be moving on.
I still have my pfsense because of policy based routing is lacking on the UDM pro units. Now that was to be addressed in 9.0 but from looking at it now… its not.
So I just put a new network and made that VPN its default route, its not working so something else might be the issue here.
DNS is not working, IP traffic is… So getting closer.
update:
DNS traffic is working over the VPN network now.
Seems to be a policy based routing issue still.
update
1/15
Looks like you have to make sure that the DNS is AUTO for the vlan/network.
However, no failback rule is not working. It will auto connect to the default internet pending my ticket.
If you had to upgrade today, which device would be you looking at? Prices seem pretty reasonable compared to other products like the Netgate and OPNsense devices.
What else could we do with the NVR drives if we didn’t have a camera system (not allowed to install them at work). That machine does make me rethink what I’m going to do with cameras at home, I’d need a POE switch and some access points to replace the consumer router and the cheezy DVR that came with the cameras.
(going off topic a bit) For cameras at home I was going to get it running with the included DVR, then eventually switch to Frigate and Home Assistant. But with the recent support for third party cameras in the UniFi NVR, this would be SO much easier!
That choice is a bit hard at the moment. I could go with the UXG-Max and manage it with my current on-prem controller. But that feels a bit messy to manage my firewall from a different appliance on an existing network. I would feel like somehow I would block myself out of it lol.
Then on the other hand I am also wanting to setup more cameras and it would be nice to invest in the UDM-Pro-Max for future proofing my setup to be an NVR also. By the end of my thought process I think I would go ahead and spend the money for the UDM-Pro-Max. Then slowly buy unifi cameras because they are kind of pricey. Or if they are able to configure the UP-AI-Port for multiple cameras then I would buy cheaper cameras.
Tom has a video mentioning cameras that have internal detection that are also supported by the latest UniFi NVR software, in theory the cameras I have use internal detection, but it was probably a lie and I won’t know until I try to work with them. Big job that I need to start working on.
With the release of 9.0, is my understanding correct that the opening of the API functionality means that people can now pull more information? Im really hoping for the ability to show total up/down totals per VLAN. Much like “Traffic Totals” on pfSense. Does anyone know of this already existing? Or able to maybe look in to this?
x.com
Lawrence Systems's Amazon Page
https://www.patreon.com/lawrencesystems